 | |  | |
January 16th, 2008, 06:08 PM
|
#1 (permalink)
| | Junior Member Verified Customer
Join Date: Sep 2004
Posts: 4
| Can't upload pics after patching exploit (functions_gallery_imageedit) I have a client running vBGallery 2.0 -- patched the file as described and now whenever I try to upload a pic I get:
"No Image specified. If you followed a valid link, please notify the administrator"
When I choose to upload it from a directory on the server it then puts an entry in the database - but - no image comes up when clicked -- doesn't even bother to copy it over to the proper dir so there's the reason.
gallery/files is chmodded -R 777 -- this all worked fine before patching that file, not sure what the issue is - I'm stumped!
Have 2 errors in the error log: Looks like a path issue but everything seems correct in the settings. Worth noting: the first error is a directory present in /forum -- why is it looking for it in /forum/gallery ? Same goes for cron.php
Help! thanks  |
| |
January 17th, 2008, 10:26 AM
|
#2 (permalink)
| | Member Verified Customer
Join Date: Sep 2004
Posts: 52
| Ditto... I'm having the same issue on my install - when a user tries to upload they get the same message |
| |
January 19th, 2008, 06:13 AM
|
#3 (permalink)
| | Member Verified Customer
Join Date: Nov 2005
Posts: 39
| am also having the same problem |
| |
January 19th, 2008, 12:14 PM
|
#4 (permalink)
| | PhotoPost Support Verified Customer
Join Date: Nov 2005 Location: Canoga Park, CA
Posts: 3,228
| Try this out:
/forums/includes/functions_gallery_imageedit.php
Find: Code: Content visible to verified customers only. Replace: Code: Content visible to verified customers only. Find: Code: Content visible to verified customers only. Replace: Code: Content visible to verified customers only. |
| |
January 19th, 2008, 12:18 PM
|
#5 (permalink)
| | PhotoPost Support Verified Customer
Join Date: Nov 2005 Location: Canoga Park, CA
Posts: 3,228
| I was doing testing w/ non alphanumeric characters and the 1st revision of the code wiped every thing out of the file name. ".jpg" and saved.
- Now I added a failsafe, if file is totally striped of the name generate one with md5().
- also updated more filenames to ban.
Let me know. |
| |
January 19th, 2008, 12:26 PM
|
#6 (permalink)
| | Member Verified Customer
Join Date: Sep 2004
Posts: 52
| Nope - that didn't help..
Thanks for the suggestion though.
Still get the "No image specified error: |
| |
January 19th, 2008, 12:47 PM
|
#7 (permalink)
| | PhotoPost Support Verified Customer
Join Date: Nov 2005 Location: Canoga Park, CA
Posts: 3,228
| Shoot me some ftp / adminCP access via PM.
- i'll take a look |
| |
January 21st, 2008, 01:29 PM
|
#8 (permalink)
| | Member Verified Customer
Join Date: Oct 2005
Posts: 49
| well, my problem is actually different, sorry! |
| |
January 21st, 2008, 05:34 PM
|
#9 (permalink)
| | Junior Member Verified Customer
Join Date: Sep 2004
Posts: 4
| Same problem happening here even after the above fix.... |
| |
January 21st, 2008, 10:20 PM
|
#10 (permalink)
| | PhotoPost Support Verified Customer
Join Date: Nov 2005 Location: Canoga Park, CA
Posts: 3,228
| Quote:
Originally Posted by Swamper Same problem happening here even after the above fix.... | Ok I logged in.
- your gallery/files folder has no ownership.
- owner: (?) they end to be owned by your login username.
I could not chmod 777 with my ftp client: Error-> no permission..
You will need to do this in CPanel or SSH.
-----------------------------
There was another member that did a command line gzip site backup/restore and sent it to the new server.. the problem is.. he was logged in as root.. so all permissions got set to "root"
Once the ownership of the files/folders were change to the current user logged in then chmod all other operations were ok. |
| |
January 21st, 2008, 10:30 PM
|
#11 (permalink)
| | Member Verified Customer
Join Date: Sep 2004
Posts: 52
| I checked my directory permissions and they are correct - still having issue... |
| |
January 21st, 2008, 11:16 PM
|
#12 (permalink)
| | Junior Member Verified Customer
Join Date: Sep 2004
Posts: 4
| Quote:
Originally Posted by maniac I checked my directory permissions and they are correct - still having issue... | I had to make sure all directories in gallery/files were chmodded 777 - then it worked for me.
Thanks Zachariah. |
| |
January 21st, 2008, 11:31 PM
|
#13 (permalink)
| | Registered User
Join Date: Jan 2008
Posts: 1
| am also having the same problem |
| |
January 21st, 2008, 11:42 PM
|
#14 (permalink)
| | PhotoPost Support Verified Customer
Join Date: Nov 2005 Location: Canoga Park, CA
Posts: 3,228
| Error in order of operations.
/forums/includes/functions_gallery_imageedit.php
Move Code: Content visible to verified customers only. Above: Code: Content visible to verified customers only. |
| |
January 22nd, 2008, 11:34 AM
|
#15 (permalink)
| | Member Verified Customer
Join Date: Sep 2004
Posts: 52
| Code is already above specified comment; And all of my upload directories are 777... Quote:
Originally Posted by Zachariah Error in order of operations.
/forums/includes/functions_gallery_imageedit.php
Move Code: Content visible to verified customers only. Above: Code: Content visible to verified customers only. | |
| |
January 22nd, 2008, 11:38 AM
|
#16 (permalink)
| | Member Verified Customer
Join Date: Sep 2004
Posts: 52
| Zachariah - just saw you uploaded an image...
I'll run a few tests and let you know if all is OK; thanks. |
| |
January 22nd, 2008, 12:21 PM
|
#17 (permalink)
| | Member Verified Customer
Join Date: Sep 2004
Posts: 52
| I ran a few tests and only admins can upload...
Gallery was running smoothly until the patch - I checked all permissions and nothing has changed.
WHen regular members try to upload thy get the error message... |
| |
February 3rd, 2008, 09:43 AM
|
#18 (permalink)
| | Member Verified Customer
Join Date: Aug 2005
Posts: 283
| stupid question.. is this issue fixed now? if yes.. was it the stripos function? (that has to be outside all functions to work.. so that fix is mandatory anyway - but only for php versions lower that 5.0x)
Luc |
| | |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | | | Thread Tools | | | | Display Modes | Rate This Thread | Linear Mode | |
Posting Rules
| You may not post new threads You may not post replies You may not post attachments You may not edit your posts HTML code is Off | | | All times are GMT -5. The time now is 09:39 AM. | |